General Topics

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer!

This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussi

...

Fuel User Group is Now Part of LIVEcommunity – Connect & Learn for Free

Hey Everyone!

The Fuel User Group is now part of LIVEcommunity! If you haven’t come across Fuel before, it’s a space where you can connect with fellow cybersecurity folk, share knowledge, and learn from each other. It’s completely free as well! Fue

...

Welcome to the General Topics Discussions!

To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating:

Rules and Best Practices

Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussion

...

Which is the stable 5.X release?

Hi All,

Currently our box is running on 4.1.11 PANOS but there is a problem, Management CPU utilization reaching up to 95% and commit is taking too long time.

Just we are looking to upgrade OS to get rigid of the above issue. which is the recommended P

...

Is it possible to see what is the amount of BW is utilized by non-business traffic?

Hi All,

Is it possible to see what is the amount of BW is utilized by non-business traffic? Not amount of Bytes being used for non-business traffic.

Regards,

Gururaj

Resolved! transfer a URL license?

Anyone know if one can transfer a URL license from one appliance to another of the same model type without a case? This is not an RMA condition.

thanks,

Resolved! Captive Portal Login Button

Has anyone been able to change the button on the captive-portal custom webpage to be anything other than the word "Login", for examples where we want a guest only button this sometimes need to read "I Agree" to bind users to an acceptable use policy.

...

Resolved! Panorama - Is it possible for a vsys admin (read only) to create PDF reports on the Monitor tab?

Panorama - Is it possible for a vsys admin (read only) to create PDF reports on the Monitor tab?

SSL-VPN Cliente Update

Hi, i want to upgrade my SSL-VPN client in my PA and I have a couple of questions regarding how it will affect the user..

Update the client SSL-VPN. Users who use this type of connection will receive some notice to update the client, when you try to

...

Resolved! Unable to create new administrator in PANOS 5.0.6

Hi All,.

Even with superuser admin role i am unable to create a new admin ( When i click ADD not opening the window ) in PAN OS 5.0.6. Is it is bug ?

Kindly help me

Regards,

Gururaj

Panorama - Restrict Firewall Log Access

Does anyone know if there is a way to create admins in Panorama for specific subdomains AND restrict their access to only the logs for the firewalls in that subdomain? I want to give access to users for only their FW logs and not let them see all of

...

Resolved! What is a "large" deployment for User-ID on the firewall?

We have a pair of 5020s and about 4000 users on 4 AD controllers. Throughout the 4.0 and 4.1 series, we have seen the Windows-based UserID Agent drop groups and users, and are interested in seeing if native event log polling from 5.0 might help. Targ

...

Resolved! Bidirectional Forwarding Detection

Does Palo Alto Firewalls support Bidirectional Forwarding Detection (BFD). Link to RFC http://tools.ietf.org/html/rfc5880

The reason i ask is it is best practice to use this as a OSPF fault detector in lue of reducing the ospf timers.

Global Protect and Android 4.0.4 - problem

Hello

I have working VPN for Windows machines. I need to extend it for Android devices, using client from Android OS.

I'm using login and passwords (not certs) in my VPN config.

I followed by the GlobalProtect-Config-Android-RevB.pdf - part 3

When I try

...

User-ID stopped populating mappings - OS 4.0.12

I am running OS 4.0.12 and have an issu with the user-ID / mappings not populating in the logs.

show user pan-agent statistics:

IPs Activity Timer(s) Domain Index

ncmpdcden01 10.250.12.10 5009 vsys1 *connected, ok 989 9

...

Is there a way to create a filtered report based on specific countries?

On PA 4.1.

I have a custom report that uses the traffic log database, with the top 500 entries for the last calendar day, with the Destination Country column enabled. 95% of the Destination Country results is the USA. I'm interested in looking at traf

...

Resolved! What happens when a previously unknown App-ID gets added to PA through dynamic updates? How are others handling this situation?

This is a situation that I brought up at work, that we don't really have an answer to. After I brought this situation up a couple of weeks ago, we actually had this exact problem bite us when an App-ID for SCEP was introduced.

Let's say there's a serv

...

There is a question about a SSL decryption for OWA(outlook Web Access).

Hi there.

I have a configuration for SSL Decryption including SSL Certifcation and SSL Decryption policy.

It is working well on a gmail, a facebook and etc, but there is not working a ssl decryption on an OWA.

I can see the owa traffic on the session

...

Discussions

Discover LIVEcommunity Through Our New Animated Explainer Video!

Fuel User Group is Now Part of LIVEcommunity – Connect & Learn for Free